Greasemonkey is a Firefox plug-in which helps in adding hacks (functionalities will be the right word) in various websites and web services. It lets you do various things pretty quickly and helps in removing ads from the websites too. This is achieved by the help of Javascripts and that’s where the security threat also sneaks in.
Javascripts can be used for various exploits and here are some of the things which malicious javascripts can do & a simple Google Search about Malicious Javascripts will give your detailed information about it :
- Malicious Javascripts can steal cookies which can contain some important information.
- They can scan the files in the hard drive and even steal them.
- They can give commands to router and in turn remove the security settings of the router and open the gates of the network completely.
These are just few dangerous things which Javascripts can do and same goes with Greasemonkey scripts too because they are nothing but Javascripts. In a recent post from Userscripts.org’s official forum (a place where you can find loads of Greasemonkey scripts), it was mentioned that some user was uploading Malicious Greasemonkey scripts which could steal information from cookies. Now, that doesn’t mean its not useful to use Greasemonkey. It is indeed very helpful to use Greasemonkey and I use it personally too. However there are few things which we can do to prevent any loss :
1. Ensure that you are installing the scripts from a credible source. Userscripts.Org is the best place to find the scripts.
2. Even though you download the scripts from Userscripts.org, make sure that you must not download the latest scripts as the latest scripts may be malicious and may not have been tested by Userscripts.org people.
3. Download only the popular ones. Just do a little search on Google about that script and you’ll come to know about lots of information about it and if that Greasemonkey script is safe to use or not.
If you think that there are any other ways of being safe from such stupid Greasemonkey scripts or Javascripts then do share it with us. Happy Safe Surfing!
Image Source : Wired
Related posts:
I havent used Greasemonkey till now . But whenever i use , i will be very careful .
me too. i might decide to only use scripts i’ve made…
Wow! I use greasemonkey everyday. I gotta becareful! Thanks for the information, Mayank! You save my life! :)
Gotta reward you with a link love to this post! Stumbled!
Btw, the monkey is Cute!! :lol:
That was a really nice post and you explained everything pretty well. Due to the same problem I do not use Greasemonkey scripts at all because they are very vulnerable at the user end.
As I have enough knowledge till now that I know what harm can javascripts do to you and your computer therefore I will suggest everyone to take care and mark caution while using Greasemonkey scripts.
@ Madhur : I’m glad that these tips will help you in future. You must use Greasemonkey, it’s really good, just be careful.
@ ShinyMissingno : If you have made some greasemonkey scripts then do share it with us :)
@ Ken : Thanks a lot for the appreciation and yes the monkey is really cute :)
@ Dj : Well, your blog displays your knowledge and the love to share that knowledge with others. Great work mate :)
@ TipsoSaurus: nope. i have none to speak of. i do have a normal javascript bookmarked to pull up a calculator… (i have tried it, it is safe. cool too.) its long though, so i don’t want to put it on here… if you want it, email me at kirbyfan95@gmail.com . i might start making some scripts…
I mainly use scripts I've written myself in GreaseMonkey to tweak internal applications at work.